Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/cukq0c1yZx0yyU_G7EY6q4HbnhY.roa
File: cukq0c1yZx0yyU_G7EY6q4HbnhY.roa (raw, json)
Hash identifier: /oM5Hh/BbSywcMq34w41Wm7foBllR+jW0rSp0fhiR60=
Subject key identifier: 72:E9:2A:D1:CD:72:67:1D:32:C9:4F:C6:EC:46:3A:AB:81:DB:9E:16
Certificate issuer: /CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Certificate serial: 1149D45A
Authority key identifier: 05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/cukq0c1yZx0yyU_G7EY6q4HbnhY.roa
Signing time: Sat 01 Jan 2022 00:51:50 +0000
ROA not before: Sat 01 Jan 2022 00:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46235
IP address blocks: 195.60.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290051162 (0x1149d45a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Validity
Not Before: Jan 1 00:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72e92ad1cd72671d32c94fc6ec463aab81db9e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6e:32:ea:98:60:9b:ff:46:3b:10:8c:64:82:
de:d3:c2:21:e0:c4:4c:17:c0:b0:c0:c3:c7:67:7b:
ee:75:ef:0b:e8:21:7c:1e:fc:b2:5b:06:00:85:ed:
ce:11:dc:98:f8:b1:cc:ed:89:b1:c2:21:21:99:67:
55:44:3d:a9:18:df:c4:67:23:41:95:f0:2c:d3:5f:
aa:52:20:67:b9:03:ae:63:13:8e:34:9c:c9:20:c1:
a0:3d:22:0f:2a:ab:e4:bc:d4:30:dc:67:b3:b8:1a:
64:b5:e2:cc:6a:96:c8:03:0a:9c:8a:7e:59:b8:96:
aa:d0:b0:50:25:c9:02:50:e1:82:f7:75:c4:83:7f:
b3:3a:79:be:1d:a0:e7:3c:3f:39:58:59:b3:f9:75:
c9:cf:3a:13:c6:f5:0e:d8:2c:0a:d7:bc:4b:7b:2c:
f8:a6:49:02:0a:b1:cb:a3:49:b5:d1:6f:f3:66:66:
17:a9:3c:2d:6b:41:c7:b7:32:3c:3e:a9:15:b3:3c:
88:38:4e:e5:04:26:76:9f:f3:78:a6:4b:bc:b8:c8:
fe:72:5c:34:1f:41:08:2f:bc:2b:9d:e7:92:55:c0:
2c:aa:10:a4:28:54:cc:2e:25:80:f9:ad:e1:db:73:
d2:e6:9b:71:f5:0a:7d:fe:95:3f:86:f9:19:3f:91:
a8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E9:2A:D1:CD:72:67:1D:32:C9:4F:C6:EC:46:3A:AB:81:DB:9E:16
X509v3 Authority Key Identifier:
keyid:05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/cukq0c1yZx0yyU_G7EY6q4HbnhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/BbMBfBaTuUW17aCR7JP4XBvh3zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.208.0/22
Signature Algorithm: sha256WithRSAEncryption
92:fd:3c:f7:c2:20:2e:94:ca:c7:c8:63:5b:13:9d:8e:73:b2:
84:1e:4b:ac:a0:ce:f9:07:f0:ad:b0:e6:aa:a0:ad:81:c2:a9:
3e:b9:9d:33:65:96:dd:37:ff:85:51:c6:7f:ab:f5:ae:16:eb:
87:a2:e3:15:50:a6:a5:c7:63:8b:5f:a7:35:66:b6:d7:f7:90:
0e:45:ee:7e:a2:1c:6b:38:4f:b8:d1:bd:da:da:97:e4:d4:29:
57:16:c7:62:d3:ed:f1:0f:26:95:2f:b9:ed:cc:07:c0:db:71:
7a:72:8f:9a:6a:2e:20:2a:e8:4c:06:db:aa:9b:dc:5a:04:f9:
2a:ff:56:5e:42:11:68:19:d9:31:83:22:a2:32:8d:6a:3d:d9:
1c:45:91:93:3e:8a:ec:6e:50:bc:35:7a:04:e9:3a:80:b8:68:
b5:06:ce:08:74:c1:14:b3:30:24:0f:a7:03:2e:fb:1b:0e:3e:
22:89:45:19:73:c7:62:5f:21:36:9d:3b:cc:17:ec:85:93:bb:
9f:0f:97:cd:40:9a:ee:4c:2c:68:a6:bf:ca:c6:8b:57:8d:8a:
40:c5:a3:f3:e8:34:c0:c7:63:f9:2b:6b:1c:b7:7c:86:43:bd:
f1:41:ed:c1:c9:3f:9f:64:a5:6b:12:61:4a:b6:41:26:a1:f2:
c9:23:c6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:56 2023 by rpki-client on console-fra.rpki-client.org